aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/sa
Commit message (Expand)AuthorAgeFilesLines
...
* ikev1: Handle queued TRANSACTION messages only after processing repliesTobias Brunner2015-10-301-1/+2
* ikev1: Extract queueing of TRANSACTIONAL requests when MM is not complete yetTobias Brunner2015-10-301-17/+27
* ikev1: Drop TRANSACTION/QUICK_MODE requests until we received the last AM mes...Tobias Brunner2015-10-301-0/+32
* ikev1: Make maximum number of IKEv1 phase 2 exchanges we keep state about con...Tobias Brunner2015-10-301-9/+11
* ikev1: Avoid fourth QM message if third QM messages of multiple exchanges are...Tobias Brunner2015-10-292-2/+14
* ikev1: Prevent deadlock when checking for duplicate IKEv1 SAsTobias Brunner2015-10-291-0/+16
* shunt-manager: Resolve %dynamic to %any4/6 before installing policiesTobias Brunner2015-09-161-7/+22
* shunt-manager: Don't install policies in case of an address family or IP prot...Tobias Brunner2015-09-161-0/+20
* trap-manager: Cleanup local address in error casesTobias Brunner2015-08-271-0/+2
* ike: Fix half-open count for initiating SAs when initially checked inTobias Brunner2015-08-271-0/+6
* ike: Only consider number of half-open SAs as responder when deciding whether...Tobias Brunner2015-08-272-11/+35
* ike: Also track initiating IKE_SAs as half-openTobias Brunner2015-08-211-1/+0
* child-rekey: Don't add a REKEY_SA notify if the child-create task is deleting...Tobias Brunner2015-08-211-6/+9
* child-create: Cache proposed IPsec protocolTobias Brunner2015-08-211-10/+13
* child-create: Don't attempt to delete the SA if we don't have all the informa...Tobias Brunner2015-08-211-8/+10
* child-rekey: Remove redundant migrate() call for child-create sub-taskTobias Brunner2015-08-211-2/+1
* child-create: Fix crash when retrying CHILD_SA rekeying due to a DH group mis...Tobias Brunner2015-08-211-0/+1
* ikev1: Fix handling of overlapping Quick Mode exchangesTobias Brunner2015-08-203-2/+70
* ikev2: Compare initiator flag again, partially reverts 17ec1c74deTobias Brunner2015-08-202-1/+5
* ikev1: Pass current auth-cfg when looking for key to determine auth methodTobias Brunner2015-08-191-1/+1
* ikev2: Store outer EAP method used to authenticate remote peer in auth-cfgTobias Brunner2015-08-191-0/+9
* ike: Use the original port when remote resolves to %anyTobias Brunner2015-08-191-1/+3
* trap-manager: Enable auto=route with right=%any for transport mode connectionsTobias Brunner2015-08-191-27/+118
* child-sa: Fix refcounting of allocated reqidsTobias Brunner2015-08-171-3/+12
* plugin-feature: Add vendor specific EAP method registration macrosTobias Brunner2015-08-171-1/+2
* Initialize variables that some compilers seem to warn aboutTobias Brunner2015-08-131-1/+1
* ike: Disable NAT keepalives in state PASSIVEThomas Egerer2015-08-041-3/+12
* ike: Fix memory leak if remote address is keptTobias Brunner2015-07-271-0/+4
* ike-rekey: Fix cleanup() callTobias Brunner2015-07-271-2/+2
* ike-rekey: Reset IKE_SA on bus before sending CREATE_CHILD_SA responseTobias Brunner2015-07-271-1/+2
* ike-rekey: Reset IKE_SA on the bus after destroying new IKE_SATobias Brunner2015-07-271-16/+15
* shunt-manager: Add flush() method to properly uninstall shuntsTobias Brunner2015-07-272-4/+46
* shunt-manager: Remove stored entries if installation failsTobias Brunner2015-07-271-2/+11
* shunt-manager: Add a lock to safely access the list of shunt policiesTobias Brunner2015-07-271-3/+17
* trap-manager: Resolve race conditions between flush() and install()Tobias Brunner2015-07-271-0/+31
* trap-manager: Changed how acquires we acted on are trackedTobias Brunner2015-07-271-36/+86
* trap-manager: Properly check-in IKE_SA if initiating failsTobias Brunner2015-07-271-2/+2
* ike: Fall back to the current remote IP if it resolves to %anyTobias Brunner2015-07-271-1/+6
* ike: Use address family of local address when resolving remote hostTobias Brunner2015-07-271-1/+14
* ike-sa-manager: Safely access the RNG instance with an rwlockTobias Brunner2015-07-141-5/+16
* ikev2: Derive additional 4 byte CHILD_SA nonce keymat for ChaCha20-Poly1305Martin Willi2015-06-291-0/+1
* ikev2: Use four byte salt for ChaCha20-Poly1305 AEADMartin Willi2015-06-291-0/+1
* ikev2: Enforce remote authentication config before proceeding with own authen...Martin Willi2015-06-051-0/+44
* child-sa: Use any fixed reqid configured on the CHILD_SA configMartin Willi2015-06-051-2/+2
* unknown-payload: Use a new private payload type and make original type availableTobias Brunner2015-06-011-8/+10
* ikev1: Trigger children_migrate event if CHILD_SAs are adoptedTobias Brunner2015-05-212-1/+8
* child-create: Destroy nonceg in migrate()Tobias Brunner2015-05-051-1/+2
* child-create: Fix error handling if nonceg can't be createdTobias Brunner2015-05-051-14/+12
* ike-init: Fix error handling if nonceg can't be createdTobias Brunner2015-05-051-13/+21
* ike-init: Fix compiler warningTobias Brunner2015-05-051-2/+0
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-16 04:38:41 +0000